Vulnerability Development mailing list archives

Re: DoS_Browser

From: Knud Erik Højgaard <kain () egotrip dk>
Date: Wed, 27 Jun 2001 20:55:10 +0200

From: "Elan Hasson" <elan () daryl org>
Sent: Thursday, June 27, 2002 6:20 PM
Subject: RE: DoS_Browser

That's not a DoS!

There was a thread about this earlier..Its just an infinate loop that does

bit of color changing.


But since the browser doesn't limite the resources used in the infinite loop
it causes the browser to hang/become unresponsive, thereby causing a Denial
of Service condition. Much like an infinite frame loop[1] or similar
stuff[2]

[1] http://quake.mobilixnet.dk (funny, 1 document cant loop back to itself,
but deeper levels arent checked in IE (macromedia dreamweaver (a html
editor) handles it fine and dandy with a warning about a recursive
frameset))

[2] <script>while(true) alert('this is an annoying dialog)</script>

-Knud

Current thread:

DoS_Browser FBE FBE (Jun 26)
- Re: DoS_Browser Remington Winters (Jun 26)
- RE: DoS_Browser Elan Hasson (Jun 27)
  - Re: DoS_Browser Knud Erik Højgaard (Jun 28)
- <Possible follow-ups>
- RE: DoS_Browser Wolf, Glenn (Jun 27)